She hacked a billionaire, a bank and you could be next. Do this now to protect yourself!
She has hacked a CNN reporter, a billionaire, a bank and many others. Rachel Tobac can hack just about anyone - including you. Learn how to protect yourself.
// MENU // 0:00 - Intro 00:58 - Rachel Tobac introduction 01:36 - Hacker vs Criminal 02:28 - SocialProof Security // Hacking sea shanty video 04:02 - Hacking CNN's Donie O'Sullivan 05:36 - Flaws in phone call authentication 08:01 - Finding passwords through data breach repositories 09:00 - Preventing hacks // YubiKey & MFA 16:38 - Flaws in SMS authentication 18:01 - Creating "uncrackable" passwords 19:56 - Recommended password managers 21:26 - "Politely Paranoid" // Be vigilant 23:17 - Phone call authentication is in the dark ages 24:59 - Tips to prevent being hacked 26:41 - MFA fatigue // How a teenager hacked Uber 29:05 - "Hacking isn't that complicated" 30:07 - Hacking Jeffrey Katzenberg // Learn from examples 33:06 - Delete the cookies // Have a different computer for work and home 34:22 - Scenario: preventing hacks as the president 45:59 - Effective preventions // Password managers & MFA 47:51 - Hacking into a bank 49:33 - "Infiltrating" a company 51:53 - Technical-based vs human-based 53:31 - Getting into Social Engineering at DefCon 55:39 - Tips for getting into Social Engineering 57:36 - Final words // Conclusion
Big thanks to Brilliant for sponsoring this video! Get started with a free 30 day trial and 20% discount: https://Brilliant.org/davidbombal (First 200 people that sign up will get a special discount).
Is the Flipper Zero just a toy? Or can it actually be used for hacking? What are better tools? What about the HackRFOne, RTL-SDR or LimeSDR?
// Occupy The Web Books //
Linux Basics for Hackers: https://amzn.to/3JlAQXe
Getting Started Becoming a Master Hacker: https://amzn.to/3qCQbvh
Network Basics for hackers: https://amzn.to/3W1iiCQ
// OTW Discount //
Use the code BOMBAL to get a 20% discount off anything from OTW's website: https://davidbombal.wiki/otw
Direct links to courses:
Pro Subscriber: https://davidbombal.wiki/otwprosub
3 year deal: https://davidbombal.wiki/otw3year
// Product Links REFERENCE //
RTL-SDR Blog V4 R 828D: https://amzn.to/43aOSFB USA and https://amzn.to/3T6KZNq UK
HackRFOne: https://amzn.to/49G80hb USA and https://amzn.to/3Tr85Q5 UK
LimeSDR: https://amzn.to/3v1A0Nd USA and https://amzn.to/3TrVYT0 UK
// Occupy The Web SOCIAL //
X: https://twitter.com/three_cube
Website: https://www.hackers-arise.com/
// YouTube Playlists mentioned //
Linux Basics for Hackers: https://www.youtube.com/watch?v=YJUVNlmIO6E&list=PLhfrWIlLOoKOs-fjCPHdzD2icF2vORfwK&pp=iAQB
Mr Robot: https://www.youtube.com/watch?v=3yiT_WMlosg&list=PLhfrWIlLOoKNYR8uvEXSAzDfKGAPIDB8q&pp=iAQB
Flipper Zero: https://www.youtube.com/watch?v=F5iiwounbzY&list=PLhfrWIlLOoKPBt0vMsvhPAw4_7Qo_lQLK&pp=iAQB
// YouTube Video REFERENCE //
Flipper Zero: Hottest hacking device of 2023?: https://youtu.be/VF3xlAm_tdo
// David's SOCIAL //
Discord: https://discord.com/invite/usKSyzb
X: https://www.twitter.com/davidbombal
Instagram: https://www.instagram.com/davidbombal
LinkedIn: https://www.linkedin.com/in/davidbombal
Facebook: https://www.facebook.com/davidbombal.co
TikTok: http://tiktok.com/@davidbombal
YouTube: https://www.youtube.com/@davidbombal
// MY STUFF //
https://www.amazon.com/shop/davidbombal
// SPONSORS //
Interested in sponsoring my videos? Reach out to my team here: sponsors@davidbombal.com
// MENU //
00:00 - Coming up
00:34 - Brilliant sponsored segment
02:05 - OccupyTheWeb books
03:02 - The Flipper Zero and SDR hacking
07:18 - Flipper Zero banned in Canada // Flipper Zero used for car theft
09:08 - Popular SDR devices on the market
11:43 - Cars are vulnerable to SDR hacking
12:21 - Software for SDR hacking // Dragon OS
13:16 - Land Rovers being denied insurance
14:10 - Hacking takes time
15:53 - Dragon OS demo for SDR hacking // Capturing signals
29:00 - Is this legal?
32:00 - The rise of satellite hacking
32:51 - Spoofing GPS signals // hackers-arise.com SDR course
33:58 - Intelligence agencies becoming aware of SDR hacking
36:24 - Consider learning about SDR hacking
37:39 - Join OTW's online classes // hackers-arise.com courses
39:17 - Special discount on hackers-arise.com // Conclusion
flipper zero
flipper
flipperzero
hackrf
hack
hacking
car hacking
sub 1 ghz
door bell
car
cars
honda
cve
alarm system
rfid
nfc
bluetooth
infrared
radio
gpio
Please note that links listed may be affiliate links and provide me with a small percentage/kickback should you use them to purchase any of the items listed or recommended. Thank you for supporting me and this channel!
Disclaimer: This video is for educational purposes only.
#flipperzero #hack #hacking
...
https://www.youtube.com/watch?v=-W1Ee1E_INY
Does Elon Musk actually understand how the Internet works? Well... let's see...
Full Elon Musk Interview: https://youtu.be/jvGnw1sHh9M
// MENU //
0:00 ▶️ Introduction
0:08 ▶️ Elon Musk Babylon Bee interview video
1:11 ▶️ How trace route works
1:40 ▶️ What is ping?
1:48 ▶️ Internet Control Message Protocol (ICMP)
2:32 ▶️ How trace route (tracert) works on Windows
3:50 ▶️ What is a router?
4:10 ▶️ Wireshark packet captures
5:21 ▶️ Time To Live (TTL)
10:18 ▶️ Domain lookup using Whois
10:55 ▶️ Time To Live (TTL) (cont'd)
12:10 ▶️ Trace route phone application
13:43 ▶️ Submarine cable map
15:22 ▶️ Traceroute on MacOS
18:34 ▶️ UDP explanation
19:56 ▶️ Traceroute on Linux
21:42 ▶️ Conclusion
// SOCIAL //
Discord: https://discord.com/invite/usKSyzb
Twitter: https://www.twitter.com/davidbombal
Instagram: https://www.instagram.com/davidbombal
LinkedIn: https://www.linkedin.com/in/davidbombal
Facebook: https://www.facebook.com/davidbombal.co
TikTok: http://tiktok.com/@davidbombal
YouTube: https://www.youtube.com/davidbombal
// MY STUFF //
Monitor: https://amzn.to/3yyF74Y
More stuff: https://www.amazon.com/shop/davidbombal
// SPONSORS //
Interested in sponsoring my videos? Reach out to my team here: sponsors@davidbombal.com
elon musk
elonmusk
babylon bee
babylonbee
elon musk interview
internet
star link
traceroute
tracert
trace route
internet
#elonmusk #traceroute #kalilinux
...
https://www.youtube.com/watch?v=xhL5Usvklpo
In this video I discuss how to configure inter-VLAN routing and layer 3 routing on a switch. This is one of multiple videos which help you prepare for the CCNA exam. My CCNA full course is here: http://www.ccnax.com
Get $200 worth of network software for free here: https://goo.gl/613TUF
#CCNA #CCENT #CCNP
Subscribe to learn how to pass the CCNA 200-125 exam. Also includes content for the ICND1 100-105 and ICND2 200-105 exams.
What do you want to learn? Let me know via the comments.
...
https://www.youtube.com/watch?v=9IaKIzGaGsY
Pass with GNS3 - full course here: http://goo.gl/ZGlJGq This video demonstrates a GNS3 integration with Kiwi Syslog Server. Download from a free copy from here: http://goo.gl/kDcrOl or get the powerful Solarwinds NPM from here: http://goo.gl/GXsWIA
You need to learn Syslog for your CCNA 200-125 exam.
...
https://www.youtube.com/watch?v=YmHu3MJdo_w
Stephen Sims shares his years of experience with us and shows us how we can make money hacking. But be careful - some of the options are not recommended.
// Stephen's Social //
YouTube: https://www.youtube.com/@OffByOneSecurity/streams
Twitter: https://twitter.com/Steph3nSims
// Stephen Recommends //
Programming Tools:
Online Compiler, Visual Debugger, and AI Tutor for Python, Java, C, C++, and JavaScript:
https://pythontutor.com/
PyCharm – Python IDE with Great IDA Pro Support:https://www.jetbrains.com/pycharm/
VS Code:https://code.visualstudio.com/
Patch Diffing:
Windows Binary Index for Patch Diffing:https://winbindex.m417z.com/
BinDiff Tool for IDA Pro, Ghidra, or Binary Ninjahttps://www.zynamics.com/bindiff.html
Diaphora Diffing Tool for IDA Prohttp://diaphora.re/
PatchExtract for Extracting MS Patches from MSU Formathttps://gist.github.com/wumb0/306f97dc8376c6f53b9f9865f60b4fb5
Vulnerable Things to Hack
HackSys Extreme Vulnerable Driver:https://github.com/hacksysteam/HackSysExtremeVulnerableDriver
WebGoat – Deliberately Insecure Application:https://owasp.org/www-project-webgoat/
Damn Vulnerable Web App:https://github.com/digininja/DVWA
Buggy Web App:http://itsecgames.com/
Gruyere Cheesy Web App:https://google-gruyere.appspot.com/
Metasploitable:https://sourceforge.net/projects/metasploitable/files/Metasploitable2/
Damn Vulnerable iOS App:https://resources.infosecinstitute.com/topics/application-security/getting-started-damn-vulnerable-ios-application/
OWASP Multillidae:https://github.com/webpwnized/mutillidae
Online CTF’s and Games:
SANS Holiday Hack 2023 and Prior:https://www.sans.org/mlp/holiday-hack-challenge-2023/ https://www.holidayhackchallenge.com/past-challenges/
CTF Time – A great list of upcoming and previous CTF’s!:https://ctftime.org/
YouTube Channels:
https://www.youtube.com/@davidbombal
https://www.youtube.com/@NahamSec
https://www.youtube.com/@OffByOneSecurity
https://www.youtube.com/@_JohnHammond
https://www.youtube.com/@ippsec
https://www.youtube.com/@LiveOverflow/videos
Free Learning Resources:
SANS Free Resources – Webcasts, Whitepapers, Posters & Cheat Sheets, Tools, Internet Storm Center:https://www.sans.org/security-resources/
Shellphish - Heap Exploitation:https://github.com/shellphish/how2heap
Exploit Database - Downloadable Vulnerable Apps and Corresponding Exploits:https://www.exploit-db.com/
Google Hacking Database (GHDB):https://www.exploit-db.com/google-hacking-database
Google Cybersecurity Certificate:https://grow.google/certificates/cybersecurity/#?modal_active=none
Phrack Magazine:http://www.phrack.org/
Kali Linux:https://www.kali.org/get-kali/#kali-platforms
Slingshot Linux:https://www.sans.org/tools/slingshot/
Books & Articles:
Gray Hat Hacking Series: https://amzn.to/3B1FeIK
Hacking: The Art of Exploitation: https://amzn.to/3Us9Uts
A Guide to Kernel Exploitation: https://amzn.to/3vfY8vu
Smashing the Stack for Fun and Profit – Old, but a classic:https://inst.eecs.berkeley.edu/~cs161/fa08/papers/stack_smashing.pdf
Understanding Windows Shellcode – Old, but still good:https://www.hick.org/code/skape/papers/win32-shellcode.pdf
Great list of exploitation paper links from Shellphish!:https://github.com/shellphish/how2heap#other-resources
// Stephen’s previous videos with David //
Free Exploit development training (beginner and advanced) https://youtu.be/LWmy3t84AIo
Buffer Overflow Hacking Tutorial (Bypass Passwords): https://youtu.be/c2BvS2VqDWg
// David's SOCIAL //
Discord: https://discord.com/invite/usKSyzb
X / Twitter: https://www.twitter.com/davidbombal
Instagram: https://www.instagram.com/davidbombal
LinkedIn: https://www.linkedin.com/in/davidbombal
Facebook: https://www.facebook.com/davidbombal.co
TikTok: http://tiktok.com/@davidbombal
// MY STUFF //
https://www.amazon.com/shop/davidbombal
// SPONSORS //
Interested in sponsoring my videos: sponsors@davidbombal.com
// MENU //
00:00 - Coming Up
00:00 - Intro
01:11 - Stephen's Experience
03:10 - How to Change Careers
05:39 - How do I Become an Expert?
08:01 - Cyber Crime
12:47 - Ransomware
16:42 - Ransomware with A.I
23:15 - Bug Bounties & Disclosures
28:22 - Web Bug Bounties
33:45 - Binary Exploitation
41:18 - Patching and n-Day Exploits
48:56 - What is the Patch Level in the Target Org?
51:47 - Diffing Example
55:40 - Professional Services
01:03:34 - Exploit Sales Considerations
01:13:07 - The Golden Era of Hacking
01:15:00 - Zero to Hero
01:27:01 - OffByOneSecurity
01:37:42 - Conclusions
01:39:43 - Outro
apple
ios
android
samsung
exploit
exploit development
zero day
0day
1day
Disclaimer: This video is for educational purposes only.
Please note that links listed may be affiliate links and provide me with a small percentage/kickback should you use them to purchase any of the items listed or recommended. Thank you for supporting me and this channel!
#android #ios #hacker
...
https://www.youtube.com/watch?v=GbyiFNSxiww
Cisco have released version 1.3 of VIRL. Release notes: https://learningnetwork.cisco.com/docs/DOC-33132
VIRL webinar (#VIRL August 2017 Webinar: VIRL PE 1.3 Release Overview and Demo): https://youtu.be/-0EFp4aD4fY
This release includes major technology updates to the underlying infrastructure on the VIRL server. While most of these changes will be invisible to you when you are working with VIRL PE from VIRL's web-based editor, the UWM, or VM Maestro, they have an impact on every simulation that runs in VIRL. This release also includes bug fixes, updated reference platforms, and some enhancements and changes since the VIRL 1.2.83 release. The following topics will be covered:
• New installation options (1-interface and 5-interface images)
• Changes to networking transparency defaults
• Updated UWM page organization
• Removal of LXDE graphical desktop on the VIRL server.
• Enforcement of the single user restriction
• New Installation tool for assigning static IP addressing
• Updated Cisco router VMs: IOSvL2, CSR1000v, and NX-OSv 9000
...
https://www.youtube.com/watch?v=qKD0ebmmYos
Dynamic Trunking Protocol (DTP) makes it easy to sniff traffic from other VLANs. Disable DTP on user facing ports by making those ports access ports.
You need to learn to code! Learn Python. Learn Networking. You are going to be very powerful and very scary if you combine knowledge of networking with Python scripting! But, do good.
Learn to code. Learn Linux. Learn Networking.
Menu:
You need to learn Python! 0:00
Network Topology: 0:57
Python Script overview: 1:28
Cisco switch DTP setup: 2:00
We can see other VLAN traffic: 3:00
Script demo: 3:45
Results of attack: 4:24
Script explanation: 5:09
Create a loop: 5:49
Wireshark capturing of a different VLAN: 6:50
Kali Linux can see all VLAN traffic: 9:07
======
Scripts:
======
All scapy scripts here: https://davidbombal.wiki/githubscapy
Scapy DTP attack: https://davidbombal.wiki/scapydtp
Playlist: https://davidbombal.wiki/scapy
==============
Scapy Resources:
==============
Website: https://scapy.net/
Documentation: https://scapy.readthedocs.io/en/latest/
================
Cisco Best practice:
================
Access ports (for vlan 2 in this case):
Switch(config-if)# switchport mode access
Switch(config-if)# switchport access vlan 2
Trunk ports:
Switch(config-if)# switchport mode trunk
Switch(config-if)# switchport trunk encapsulation dot1q
Switch(config-if)# switchport nonegotiate
================
Connect with me:
================
Discord: https://discord.com/invite/usKSyzb
Twitter: https://www.twitter.com/davidbombal
Instagram: https://www.instagram.com/davidbombal
LinkedIn: https://www.linkedin.com/in/davidbombal
Facebook: https://www.facebook.com/davidbombal.co
TikTok: http://tiktok.com/@davidbombal
YouTube: https://www.youtube.com/davidbombal
python
scapy
ccna
ccnp
python scapy
dtp
dynamic trunking protocol
dynamic trunk protocol
ccna 200-301
python scripts
kali linux
linux
kali
cisco
kali linux 2021.2
kali linux 2021
vmware
vmware kali
kali linux install
oscp
ceh
security+
pentest+
Please note that links listed may be affiliate links and provide me with a small percentage/kickback should you use them to purchase any of the items listed or recommended. Thank you for supporting me and this channel!
#ccna #python #scapy
...
https://www.youtube.com/watch?v=u5cp_hcwq2c
Want to know how to setup EVE-NG? This EVE-NG tutorial shows you step by step. Full EVE-NG installation guide showing you how to add images to EVE-NG and get an EVE-NG lab set up. Learn how to download and install VMware Workstation Player, how to add EVE-NG to VMware, how to create a topology, how to add Cisco images to EVE-NG and much more.
Menu:
EVE-NG versions: 1:58
Cookbooks: 2:44
Hardware Requirements and calculator: 3:00
Virtualization platforms: 4:00
Enable VT-x in BIOS: 5:51
Download EVE-Ng: 7:05
Download VMware Player: 8:00
Install VMware Player: 8:58
Import and configure EVE-NG in VMware Player: 10:27
Start EVE-NG and set initial EVE-NG config: 13:47
Build and test first topology: 16:17
NAT Adapters: 19:20
Add Cisco images to EVE-NG: https://youtu.be/YKYdq3Ww_C0
==========================
EVE-NG links:
=================================
EVE-NG Website: https://www.eve-ng.net/
Download EVE-NG Community: https://www.eve-ng.net/downloads/eve-ng-2
Download EVE-NG Professional: https://www.eve-ng.net/downloads/eve-ng
Community Cookbook: https://www.eve-ng.net/images/EVE-COMM-COOK-BOOK-latest.pdf
=================================
Free Network Software:
=================================
Solar-PuTTY: http://bit.ly/SolarPutty
SolarWinds TFTP Server: http://bit.ly/2mbtD6j
WAN Killer: http://bit.ly/wankiller
Engineers Toolset: http://bit.ly/gns3toolset
IP Address Scanner: http://bit.ly/swipscan
Network Device Scanner: http://bit.ly/swnetscan
Wifi Heat Map: http://bit.ly/wifiheat
Wifi Analyzer: http://bit.ly/swwifianalyzer
SolarWinds NPM: http://bit.ly/getnpm
10x Engineer
CCNA
Cisco Devnet Associate
CCNP Enterprise
CCNP Security
CCNP Data Center
CCNP Service Provider
CCNP Collaboration
Cisco Certified Devnet Professional
Cisco Certified Network Professional
LPIC 1
LPIC 2
Linux Professional Institute
LX0-103
LX0-104
XK0-004
#eveng #gns3 #virl
...
https://www.youtube.com/watch?v=FDbgTlr-tnw
Capture traffic using Wireshark and then import the pcap files into Ostinato; and then generate frames back into the network. In this example we will get Ostinato to be the root of the spanning tree.My Full CCNA course is here http://ccnax.com.
Free software worth $200: https://goo.gl/613TUF
Ostinato - Network Traffic Generator Part 7. Easily create packets for testing in your GNS3 network.
Ostinato is a packet crafter, network traffic generator and analyzer with a friendly GUI. Also a powerful Python API for network test automation. Craft and send packets of several streams with different protocols at different rates. Think of it as “Wireshark in Reverse”.
...
https://www.youtube.com/watch?v=zTbJaFCbvME